How to change the Sharing settings for a resource?

This is the beginner I imagine too. And it feels right to have content for them in a separate thread or category. The different “shades” of beginners @johanbove listed are also important for the categorization.
If you don’t mind we can move this interesting discussion to: Promote this forum to newcomers more intensively where I shared some thoughts about the content experiences I envision (the ones I would be happy to see as a non-tech person) throughout my first Solid encounter.

As a Beginner/not-Developer that wants to learn to use the currently available tools, I find this post and the resulting thread to be extremely helpful.

2 Likes

How do you grant a specific webId or web-app (Origin header / domain name) access to your resource? I can see that you can drag the globe to a sharing-setting, but what about a WebID or Origin value?

1 Like

Pinging @megoth here who might be in the know!

1 Like

I’ve been updating the acl files directly.

By going to the .acl file directly in the browser, viewing the source by hovering in the header area and clicking the appropriate icon. click the pencil Icon to edit, add your acl statements granting access, click the check mark to save.

1 Like

Thanks. Though I cannot figure out how to locate the ACL files?

Example: I want to grant access to my inbox https://elfisk.solid.community/inbox/ for the Origin/web.app “elfisk.dk”. Where would the “.acl” file that be located?

1 Like

You’d have to inspect the http Link headers to be sure, but it’s most likely /inbox/.acl

1 Like

Ah :slight_smile: I was trying “inbox.acl” not “inbox/.acl”. Thanks.

1 Like

Can you help me again? I’ve got the ACL for /inbox/.acl:

@prefix : <#>.
@prefix n0: <http://www.w3.org/ns/auth/acl#>.
@prefix inbox: <./>.
@prefix c: </profile/card#>.

:ControlReadWrite
    n0:accessTo inbox:;
    n0:agent c:me, <mailto:jw@elfisk.dk>;
    n0:origin <http://elfisk.dk>;
    n0:defaultForNew inbox:;
    n0:mode n0:Control, n0:Read, n0:Write;
    a n0:Authorization.
:Read
    n0:accessTo inbox:;
    n0:defaultForNew inbox:;
    n0:mode n0:Read;
    a n0:Authorization.
:ReadWrite
    n0:accessTo inbox:;
    n0:defaultForNew inbox:;
    n0:mode n0:Read, n0:Write;
    a n0:Authorization.

I can see the agent “c:me” (my WebID) has Control, Read and Write access.

Now I want to grant access to the origin http://elfisk.dk which is the Origin header I can see in Fiddler. As you can see above I’ve tried n0:origin <http://elfisk.dk> - but without luck - the server returns “Not authorized”.

I have also tried n0:trustedOrigin <http://elfisk.dk> without luck.

The server has accepted my change: if I reload the .acl page I can se my changes.

If I try the exact same request, through Fiddler, without the “Origin” header, it returns 200-OK with the inbox data.

I’m trying to go through https://www.w3.org/wiki/WebAccessControl to understand what is going on. But apparently missing something.

Do you know what I am supposed to do?

1 Like

@JornWildt sorry for late response, I’ve been on away for a couple of days. I’m not quite into the whole access/resource sharing with apps yet, so I’ll refer to @timbl and @RubenVerborgh in hopes they might have time to answer your questions.

Just in case, have you looked at the Solid Specificatino and the parts on Authorization and Access Control?

1 Like

Yes, thanks, I’ve tried to understand both - it ends at https://github.com/solid/web-access-control-spec#referring-to-origins-ie-web-apps with “A specific ACL can be be made to allow a given app to access a given file or folder of files” … without further details about how its done plus some future ideas.

1 Like

.acl files.
How do you go directly to the file in the databrowser ?

1 Like

Sharing for file solidlinks.txt
Error reading ACL. status Can’t get headers to find ACL for <https://>: Failed to load <https://> Fetcher: fetch failed: TypeError: https:// is not a valid URL. status: 999: ( No ACL pointer https:// Can’t get headers to find ACL for <https://>: Failed to load <https://> Fetcher: fetch failed: TypeError: https:// is not a valid URL. status: 999)undefined
What I get when trying to change permissions as described in this post.

1 Like

This is only a problem with solid.tilde.team, not solid.community for some reason

1 Like

What’s you version of Solid ?

1 Like

If it’s on 5.0.0 beta you should report on chat node-solid-server. There is already a report on .meta files

1 Like

You can drag users by their webid straight into the rainbow access control panel above. One way to find a user to drag is to drag their icon/name from the author tab on a solid chat message. So chat with them and then add them.

Or you can follow a link to their webid, and then drag the URL bar icon .

4 Likes

Thanks! I didn’t know that. I only knew I could drag WebId URLs into the FOAF panel. Will try the “custom” sharing. :]

Another things you can drag into the window are Groups, from a group file or an address book. The group should have the webids of its members declared in that file.

In principal you can also drag in an Origin like https://tools.inrupt.net with NO TRAILING SLASH … but if you try to set that up in the browser (and other tools) They will tend to add a trailing slash, which mades it just a folder on the web.

2 Likes

It worked. The first thing (the one with the Tools - I could’t get to anything)
I had hard time creating a group. Is it done only from the address book?
I had one, created some time ago - https://teodora.solid.community/public/testaddressbook/ and than managed to add a Group to it -
https://teodora.solid.community/public/testaddressbook/Group/wordsmiths.ttl#this. Then the dragging and the sharing with that group worked. [sharing some screenshots below + 1 error message] What is the text box above “Ne address Book - tools” and above “person name:” for?

When I add a contact is there a way this contact gets extracted (not sure about the word) from my “knows” file? Or from something like a Solid list of people :slight_smile: